@blackhatofficial.bsky.social
The World's Premier Technical Cybersecurity Conference Series blackhat.com Join Us at Black Hat USA this August 2-7, 2025: blackhat.com/us-25/
π¨Don't miss #BHUSA Keynote Three Decades in Cybersecurity: Lessons Learned and What Comes Next.
Mikko takes us through the most pivotal shifts in cyber-attacks. 30 years on the cyber frontlines. An informed look ahead at what's likely coming next π Learn more >> bit.ly/3UoV6OC
π£Check out the #BlackHat Fall Interactive Online Trainings! From infrastructure hacking to incident response, there's a course for individuals of all experience levels. Expand your security talent in just four days, fully online this Fall! Register here >> bit.ly/4e8UZQz
21.07.2025 22:38 β π 0 π 0 π¬ 0 π 0
Back @blackhatofficial.bsky.social with my flagship #cloud security class:
0wning the Cloud - AWS, Azure, GCP, DigitalOcean, Aliyun
π 2-3 Aug: www.blackhat.com/us-25/traini...
π 4-5 Aug: www.blackhat.com/us-25/traini...
π― 80% hands-on
π― Real-world API & IAM attacks
π₯ Early bird closes May 23!
Estelle Ruellan and I were accepted at BlackHat USA!!
"Hackers Dropping Mid-Heist Selfies: LLM ldentifies Information Stealer Infection Vector and Extracts loCs"
Couldn't be happier sharing what we did on a worldwide stage!
p.s.: picture of us celebrating from Botconf after our talk today
#BHUSA
Last chance: today is the final day to get Early Bird pricing for all @blackhatevents.bsky.social courses. Prices go up after tonight.
Register today before prices increase:
blackhat.informafestivals.com/usa/2025/
#BHUSA #CyberSecurity #RedTeam
Advanced Active Directory to Entra ID Lateral Movement Techniques Dirk-jan Mollema | Security Researcher, Outsider Security Format: 40-Minute Briefings Tracks: Cloud Security, Enterprise Security Is there a security boundary between Active Directory and Entra ID in a hybrid environment? The answer to this question, while still somewhat unclear, has changed over the past few years as there has been more hardening of how much "the cloud" trusts data from on-premises. The reason for this is that many threat actors, including APTs, have been making use of known lateral movement techniques to compromise the cloud. In this talk, we will take a deep dive together into Entra ID and hybrid trust internals. We will introduce several new lateral movement techniques that allow us to bypass authentication, MFA and stealthily exfiltrate data using on-premises AD as a starting point, even in environments where the classical techniques didn't work. All these techniques are new, not really vulnerabilities, but part of the design. Several of them have been remediated with recent hardening efforts by Microsoft. Very few of them leave useful logs behind when abused. As you would expect, none of these "features" are documented. Join me for a wild ride into Entra ID internals, undocumented authentication flows and tenant compromise from on-premises AD.
I'll be returning to #BHUSA @blackhatevents.bsky.social this summer for a brand talk about moving laterally from AD to Entra ID. I don't think I've ever been this excited about a talk, with lots of cool stuff to share π’ π.
16.05.2025 08:00 β π 15 π 1 π¬ 1 π 0
π Exciting News! π
I'm thrilled to announce that our talk, "Burning, Trashing, Spacecraft Crashing: A Collection of Vulnerabilities That Will End Your Space Mission," has been accepted for Black Hat USA 2025!
lnkd.in/espb_dAq
#BlackHatUSA
#BHUSA
@blackhatofficial.bsky.social
Last chance to grab early bird tickets for our Azure Intrusion training at #BHUSA 2025! Join us in Las Vegas for 100% offensive, hands-on content showcasing real-world attack techniques against modern Azure environments! @blackhatevents.bsky.social outline at www.blackhat.com/us-25/traini...
19.05.2025 13:03 β π 2 π 3 π¬ 0 π 0
Heads up! Prices for all courses at @blackhatevents.bsky.social go up on May 23rd. Lock in your spot now before the end of Early Bird pricing! #BHUSA #CyberSecurityTraining #RedTeam
blackhat.informafestivals.com/usa/2025/
The #BHEU Arsenal call for Tools is open! Arsenal is an open-source tool demo area where researchers & developers showcase their latest projects in an interactive environment. Share your tools with the community & watch cutting-edge demos. Apply until July 9 >> bit.ly/4mdUecj
20.05.2025 18:20 β π 0 π 0 π¬ 0 π 0Last week to save before prices go up on 23rd May!
Unless you Accelerate your AppSec Programme, you are going to get left behind..
Join me @blackhatofficial.bsky.social #BHUSA this summer in Las Vegas (4-5 Aug) for a practical guide on how to build bridges with developers and build securely!
Donβt miss our Active Directory course at @blackhatevents.bsky.social! Master techniques for infiltrating Windows Domains and put your skills to the test in an immersive hands-on lab environment. #Pentest #RedTeam #ActiveDirectory #BHUSA #Cybersecurity
www.blackhat.com/us-25/traini...
I'm thrilled to announce "HTTP/1 Must Die! The Desync Endgame", at #BHUSA! This is going to be epic, check out the abstract for a teaser β
14.05.2025 13:31 β π 38 π 18 π¬ 2 π 1
Think your tools are stealthy? Think again. This course teaches how to break detection, unhook APIs, bypass ETW/AMSI, and weaponize obfuscation like top-tier APTs. If you're not evading, you're just noisy. Meet us at @blackhatevents.bsky.social! #RedTeam #MalwareDev #CyberSecurity #BHUSA #Obfuscatio
09.05.2025 14:00 β π 0 π 1 π¬ 0 π 0
π¨ Our first Breaking BitLocker training at Black Hat USA 2025 is 30% SOLD OUT β weeks before early bird ends!
Learn to break TPM-only BitLocker with real hardware & hands-on techniques. Donβt wait β spots are flying!
Aug 2&3:
hos.direct/bhusa25-23aug
Aug 4&5:
hos.direct/bhusa25-45aug
#BHUSA
its been 9 months since #BHUSA and living off microsoft copilot
ppl have been asking if things are better now
well.. they are much better. but for whom? πππ
catch the sequel at hacker summer camp featuring very disturbing shenanigans
@blackhatevents.bsky.social
Learn π about this emerging topic in a first-of-its-kind #BHUSA training from @retbandit.bsky.social and I where you will use hands-on labs to perform attacks such as model theft, model poisoning and much more π€
blackhat.com/us-25/traini...
At @BlackHatEvents #BHUSA on 4-5 Aug in Las Vegas, you can attend "Accelerated AppSec: Hacking your Product Security Programme for Velocity and Value".
This course helps you build a successful programme to bridge the gap between developers and security, without losing speed.
4/5
π£ Enter the #BHUSA Startup Spotlight Competition for the opportunity to gain unparalleled visibility, connect with industry leaders, & accelerate your growth in the #cybersecurity sector. Showcase your innovative solutions to a live audience & judges. Learn more: bit.ly/3YF6Vmk
13.05.2025 15:22 β π 2 π 0 π¬ 0 π 0
The #BHUSA Early Registration Rate ends May 23rd! Register today to lock-in the lowest rate before it increases. Register here >> bit.ly/4jnXIa5
#BHUSA #Cybersecurity
Elevate your training journey with the #BlackHat self-assessment tool! π» Dive into an evaluation of your expertise across 12 essential areas of cybersecurity. Learn more >> bit.ly/3EicWyy
09.05.2025 19:40 β π 1 π 1 π¬ 0 π 0
The #BHUSA 2025 Early Registration rate ends MAY 23! Secure your spot today at the lowest rates available>> bit.ly/4l9aYRH
08.05.2025 16:08 β π 1 π 1 π¬ 0 π 0
π£ Black Hat is now on Bluesky! Follow us for the latest in #cybersecurity research, industry insights, and exclusive event updates. Don't miss out!
Check out this year's biggest event, Black Hat USA 2025 >> www.blackhat.com/us-25/?_mc=s...
